minch

voguant sur le web

Le 11/06/2019 20:54 dans minch/veille/

Veille pour le cours appsec de l'ESD

Projet : cr矇ation d'un site web avec espace de connexion / enrregistrement et un espace priv矇 d'affichage / modification de donn矇es.

bout de code de d矇part

Formulaire de login avec HTML/CSS, PHP et MySQL

Je retrouve mes classiques de la s矇curisation

Extr矇miste inside

Conf矇rences

20181018ekinoweb-vie-privee

https://confs.imirhil.fr/20141116ubuntuchiffrofete/tls.html

Hygi癡ne num矇rique pour ladministrateur syst癡me

https://confs.imirhil.fr/20141116ubuntuchiffrofete/paquet.html

20170520hack2g2autohebergement

20171006pariswebsecu-demain-web-aujourdhui

20170513root66securite-admin-sys

Petite recherche sur les mots de passe

comptoirsecu.fr mots de passe - Recherche Google

[SECHebdo] 7 Mai 2019 : Le Comptoir S矇cu

Le NIST signe-t-il larr礙t de mort de nos politiques de mots de passe ? : Le Comptoir S矇cu

zxcvbn: realistic password strength estimation | Dropbox Tech Blog

How to Safely Store Your Users' Passwords in 2016 - Paragon Initiative Enterprises Blog

PasswordResearch.com

PasswordResearch.com Authentication News

Password Hashing Competition

zxcvbn nist - Recherche Google

NIST Special Publication 800-63-3

Bonnes pratiques de Crossoft

Level 3 enterprise VIP security configuration | Microsoft Docs

explainshell.com - tar cvzf

Cabinet de recrutement de RSSI - Responsables et Ing矇nieurs S矇curit矇 des syst癡mes d'information et cybers矇curit矇 - Paris, Lille, Lyon, Toulouse, Marseille, Bordeaux, Rennes, Strasbourg

aws - How to run sudo command with no password? - Ask Ubuntu

S矇curisation du serveur

iptables broadcast block - Recherche Google

iptables [Wiki ubuntu-fr]

Je ne suis pas un dev...

Les sessions - Le PHP Facile

Secure Salted Password Hashing - How to do it Properly

GitHub - defuse/password-hashing: Password hashing code.

mysql create database and user at DuckDuckGo

How-To create a MySQL database and set privileges to a user - Debuntu

MySQL :: MySQL 5.7 Reference Manual :: 3.3.1 Creating and Selecting a Database

create table mysql at DuckDuckGo

htmlentities htmlspecialchars at DuckDuckGo

PHP: Manual Quick Reference

verify email php at DuckDuckGo

PHP 5 Forms Validate E-mail and URL

mysql use database at DuckDuckGo

MySQL :: MySQL 5.7 Reference Manual :: 3.3 Creating and Using a Database

Quand on ne veut pas d'un phpmyadmin null, il vaut mieux installer Adminer

instal lamp at DuckDuckGo

Installation rapide de LAMP (Apache+MySql+php) sous Linux

lamp [Wiki ubuntu-fr]

php enable mysql at DuckDuckGo

php create user - Recherche Google

Creating a User Login System with PHP and MySQL - Tutorial Republic

mysqlirealescape_string at DuckDuckGo

PHP: mysqli::realescapestring - Manual

http://192.168.43.128/quote.php

http://192.168.43.128/quote.php

http://192.168.0.16/login.php

php session logout at DuckDuckGo

logout and redirecting session in php - Stack Overflow

Liste HTML (UL LI - OL LI)

php password bcrypt at DuckDuckGo

PHP: nl2br - Manual

Citations, proverbes Canard

apache header Feature-Policy - Recherche Google

security - How can I add in Apache Feature Policy Header? - Server Fault

How can I add in apache referrer policy header? - Server Fault

mod_headers - Serveur HTTP Apache Version 2.4

How to Implement Security HTTP Headers to Prevent Vulnerabilities?

Could not open configuration file /usr/share/modsecurity-crs/owasp-crs.load - Recherche Google

HOW TO CONFIG ModSecurity in Apache2 , i have encountered a error. Can you help me? 繚 Issue #1441 繚 SpiderLabs/ModSecurity 繚 GitHub

esd-appsec.lenalio.fr/index.php

pve - Proxmox Virtual Environment

xframe option at DuckDuckGo

Header set X-Permitted-Cross-Domain-Policies "none" at DuckDuckGo

10 Simple Ways to Secure Your Website Perpetual 帣eta

Mozilla Observatory :: Scan Results for imirhil.fr

Mozilla Observatory :: Scan Results for lenalio.fr

Web Security

Report URI: Welcome to report-uri.com

Portail YunoHost

Portail YunoHost

use nginx as reverse proxy at DuckDuckGo

How to Use Nginx as a Reverse Proxy - Make Tech Easier

CryptCheck

CryptCheck

esd-appsec.lenalio.fr/index.php

Mozilla Observatory :: Scan Results for esd-appsec.lenalio.fr

SSL Server Test: esd-appsec.lenalio.fr (Powered by Qualys SSL Labs)

Generate Mozilla Security Recommended Web Server Configuration Files

SSL Server Test: esd-appsec.lenalio.fr (Powered by Qualys SSL Labs)

CryptCheck

Redirect all HTTP requests to HTTPS with Nginx

403 Forbidden

w3.org/robots.txt

security.txt - Recherche Google

security.txt | A proposed standard which allows websites to define security policies

proxyfied apache x forwarded - Recherche Google

mod_remoteip - Serveur HTTP Apache Version 2.4

12 Tcpdump Commands - A Network Sniffer Tool

proxmox import img - Recherche Google

D矇ployez vos machines virtuelles KVM sur Proxmox VE avec Cloud-Init

pve - Proxmox Virtual Environment

Mon Modem

How to clear HSTS Settings in Major Browsers | that's so classically.me

Export Tabs URLs Adoptez cette extension pour Firefox (fr)